Forum report PHDays 2015

May 28, 2015

We took part in the Positive Hack Days Forum 2015 on practice security. Andrey Karpov gave a presentation on "200 Open Source Projects Later: Source Code Static Analysis Experience"

Positive Hack Days is a unique international event. It is the only event which brings together the elite of the hackers' world, leaders of the information security industry and representatives of the Internet community to cooperate in addressing burning information security issues. PHDays considers many different preferences of the entire information community and covers the most topical issues related to information security.

The PVS-Studio analyzer is a methodology of detecting errors in program code. However, error is not an incorrect work of the program but also a potential vulnerability. Everything depends on perspectives you look at this errors.

That is why we took part in this forum and tried to demonstrate how often programmers make mistakes or make it vulnerable without any suspicions. The report is based on checking more than 200 projects experience. We were finding various defects with the help of PVS-Studio.

The record of Russian version of presentation with English submits: http://www.phdays.ru/broadcast/. The report's start: 06:13:21. You can easily find it by number 200 on the page and choosing this report in the list.

Use PVS-Studio to search for bugs in C, C++, C# and Java

We offer you to check your project code with PVS-Studio. Just one bug found in the project will show you the benefits of the static code analysis methodology better than a dozen of the articles.